René's URL Explorer Experiment

{"@context":"https://schema.org","@type":"DiscussionForumPosting","headline":"Sensitive data masking for the processes inside a container like a curl request","articleBody":"Hi, thank you for a great product!\n\nI have a small request:\n\nCurrently, when StackRox logs the contents of processes inside a container like a curl requests (for example, in the UI, logs, or in external integrations such as Slack notifications), sensitive information such as tokens, authorization headers, API keys, or other secrets may be included in plain text. This poses a security risk by potentially leaking credentials to users with access to logs, UI, or integrations.\n\nTo make matters worse, StackRox's only one DeploymentExtension:Read permission controls both network flows and the display of processes and startup arguments, requiring this permission to be granted to anyone who needs network browsing access.\n\nFeature Request:\n\nPlease add a feature that enables automatic masking or removal of sensitive data when logging processes inside a container like a curl requests or sending request data to external integrations (such as Slack). \n\nDesired Behavior:\n\n- Sensitive data fields should be replaced with a placeholder (like [REDACTED]) before being logged or sent to the UI/integrations.\n- There should be a configuration option to disable or enable showing and loggin of processes launch options.\n- The masking/removal should be applied consistently across all logs, UI displays, and outgoing integrations (such as Slack notifications).\n\nExample:\n\nBefore:\ncurl -H \"Authorization: Bearer secret_token_123\" -H \"x-api-key: myapikey\" https://api.example.com/data\n\nAfter:\ncurl [REDACTED]\n\nThank you for considering this feature request! Please let me know if additional details or clarifications are needed.","author":{"url":"https://github.com/Danyboy","@type":"Person","name":"Danyboy"},"datePublished":"2025-10-08T09:10:27.000Z","interactionStatistic":{"@type":"InteractionCounter","interactionType":"https://schema.org/CommentAction","userInteractionCount":1},"url":"https://github.com/17183/stackrox/issues/17183"}